Cyber Security Manager

Passionate and experienced Cyber Security Manager with a proven track record of delivering software solutions to join a new ‘start-up’ division

With a background in technology disruption or financial services (preferably retail credit), you’ll leverage your industry knowledge to design and deliver key security solutions for the platform. Operating like an independent start-up, within an established organisation, you’ll be completely at home with agile frameworks and will fully embrace iterative and flexible delivery approaches.

We are looking for experienced cyber security specialists, with a track record of facilitating change to help assure our future success in these areas. The Cyber Security Manager will oversee risk assessment and communication related to software and infrastructure vulnerabilities. They will collaborate with teams to identify vulnerabilities, prioritise risks, and improve the vulnerability management process, including continuous scanning and patch management.

• Good working knowledge of AWS security services and implementations, e.g. Security Hub, Control Tower, Organizations, SCPs, IAM entities and policies, Account lockdown and AI/ML tools like Macie and Guard Duty.
• You will also understand and maintain security compliance requirements e.g. DPA, GDPR, PCI DSS, SOC1, SOC2 and ISO27001.
• To have a personal and corporate awareness of current Information Security Issues, e.g. emerging vulnerabilities and zero-day exploits, and to identify appropriate risk mitigation countermeasures.
• Understanding of risk assessment methodologies and the ability to identify, assess, and prioritize security risks to the organization.
• Managing third party suppliers.
• The ability to work with teams and stakeholders to promote and facilitate security best practise.
• Excellent communication skills to effectively convey complex technical information to non-technical stakeholders, executives, and employees. This includes writing reports, creating policies, and conducting security training.
• Ability to analyse complex problems, troubleshoot security incidents, and develop effective solutions to mitigate security risks.